$ rpki-client -vvf repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/323430363a356334303a3a2f33322d3438203d3e20313331373035.roa File: 323430363a356334303a3a2f33322d3438203d3e20313331373035.roa (raw, json) Hash identifier: ZrrNvfIdpKFxME3MijZJjel9mkVCFWr1LKlyTLKuOmk= Subject key identifier: AC:1A:FC:64:4F:FD:E5:C9:40:E5:88:C7:E1:DC:41:F6:69:05:AD:28 Certificate issuer: /CN=0A8E8E063785238467D4AD1F507CC97B30DBB959 Certificate serial: 49DC583931CE2528B4EA68AE4B5B6508AD56E19A Authority key identifier: 0A:8E:8E:06:37:85:23:84:67:D4:AD:1F:50:7C:C9:7B:30:DB:B9:59 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A8E8E063785238467D4AD1F507CC97B30DBB959.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/323430363a356334303a3a2f33322d3438203d3e20313331373035.roa Signing time: Thu 15 May 2025 16:00:00 +0000 ROA not before: Thu 15 May 2025 15:55:00 +0000 ROA not after: Thu 14 May 2026 16:00:00 +0000 asID: 131705 IP address blocks: 2406:5c40::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/0A8E8E063785238467D4AD1F507CC97B30DBB959.crl rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/0A8E8E063785238467D4AD1F507CC97B30DBB959.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A8E8E063785238467D4AD1F507CC97B30DBB959.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 03:58:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:dc:58:39:31:ce:25:28:b4:ea:68:ae:4b:5b:65:08:ad:56:e1:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0A8E8E063785238467D4AD1F507CC97B30DBB959 Validity Not Before: May 15 15:55:00 2025 GMT Not After : May 14 16:00:00 2026 GMT Subject: CN=AC1AFC644FFDE5C940E588C7E1DC41F66905AD28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:ee:f3:3b:a3:d3:db:e5:1d:d8:81:bb:77:fb: a2:29:84:16:cc:e9:4b:bf:ef:81:94:d4:ac:6b:98: d0:8e:46:2e:75:07:1c:6f:f5:fe:20:e8:7f:be:9c: 0e:80:f7:5f:37:c6:e6:82:3c:e1:79:d1:41:ab:27: ee:4d:3a:36:49:9f:d8:11:af:b5:76:be:65:fc:0c: ff:34:bb:d2:4d:0d:41:c6:43:52:3e:af:dd:40:d5: df:b8:1c:23:94:62:c8:d5:06:e2:4d:d6:5c:cd:51: c4:0d:46:37:03:4e:aa:0a:f5:5a:bc:aa:2b:96:b6: cf:73:1d:eb:4a:41:ab:80:7e:aa:10:92:52:83:fe: a4:11:64:94:3c:43:dc:25:44:f9:73:ed:be:93:c2: dc:fb:fc:0f:86:df:07:85:73:2b:69:8f:55:89:79: c5:b3:5c:e7:8c:29:c5:d4:63:ce:a1:96:9d:89:67: d5:52:2d:a9:d1:6c:6f:59:20:18:33:68:b7:a7:27: cc:78:70:cc:68:d8:ac:c1:58:fb:dd:21:e8:2a:af: 9b:48:d4:8b:75:ac:b1:66:77:00:07:71:df:70:47: 83:f1:7e:c5:72:e8:43:71:9d:60:fe:65:c4:44:fe: a9:45:ce:2b:f3:6f:ef:3b:0d:b3:57:0c:15:ae:74: bb:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:1A:FC:64:4F:FD:E5:C9:40:E5:88:C7:E1:DC:41:F6:69:05:AD:28 X509v3 Authority Key Identifier: keyid:0A:8E:8E:06:37:85:23:84:67:D4:AD:1F:50:7C:C9:7B:30:DB:B9:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/0A8E8E063785238467D4AD1F507CC97B30DBB959.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A8E8E063785238467D4AD1F507CC97B30DBB959.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/323430363a356334303a3a2f33322d3438203d3e20313331373035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:5c40::/32 Signature Algorithm: sha256WithRSAEncryption a4:fb:9a:dc:5d:77:2e:21:fa:4e:8e:8b:48:ed:8d:91:36:ea: a5:eb:3d:1b:6f:24:bc:f5:de:fc:f9:4a:81:a3:df:32:00:0f: b8:24:24:65:c0:1f:fc:18:6c:2c:7c:8d:08:b3:38:0f:0f:d4: 2a:27:3a:f0:6f:a1:f1:92:a8:13:4b:13:54:90:a4:60:6e:2f: 9d:c1:f4:ae:5a:1b:89:5f:43:d9:7d:e1:15:df:38:96:7a:f6: b9:8e:a9:c5:b5:3c:cf:5e:58:31:fe:0a:34:3d:f4:0b:84:b6: 3b:08:79:10:fe:5d:2d:b5:66:42:27:85:4b:39:c4:8c:96:d1: c2:ec:cb:86:49:0e:7a:b0:9d:6d:65:67:77:d8:02:29:7f:1e: 38:7c:b3:1d:eb:92:ef:34:2b:c8:b5:4e:04:8c:22:d9:9d:f8: a0:ad:0b:1a:e8:f4:b3:34:12:50:49:70:a2:78:f2:ac:50:50: 8c:be:6f:e5:09:e6:bc:6a:b7:74:7c:2b:af:b0:0d:ff:8d:f9: fc:3c:e2:46:32:b3:5a:7c:86:6f:22:88:52:2f:8d:d4:3f:45: e3:6a:5d:b5:31:10:45:c5:d5:58:32:71:29:17:9f:e6:d1:ea: 84:a9:01:d5:07:13:07:53:54:a2:6e:65:c3:02:11:72:0c:7d: 7f:29:7a:0e -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUSdxYOTHOJSi06miuS1tlCK1W4ZowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEE4RThFMDYzNzg1MjM4NDY3RDRBRDFGNTA3Q0M5N0Iz MERCQjk1OTAeFw0yNTA1MTUxNTU1MDBaFw0yNjA1MTQxNjAwMDBaMDMxMTAvBgNV BAMTKEFDMUFGQzY0NEZGREU1Qzk0MEU1ODhDN0UxREM0MUY2NjkwNUFEMjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDc7vM7o9Pb5R3Ygbt3+6IphBbM 6Uu/74GU1KxrmNCORi51Bxxv9f4g6H++nA6A9183xuaCPOF50UGrJ+5NOjZJn9gR r7V2vmX8DP80u9JNDUHGQ1I+r91A1d+4HCOUYsjVBuJN1lzNUcQNRjcDTqoK9Vq8 qiuWts9zHetKQauAfqoQklKD/qQRZJQ8Q9wlRPlz7b6Twtz7/A+G3weFcytpj1WJ ecWzXOeMKcXUY86hlp2JZ9VSLanRbG9ZIBgzaLenJ8x4cMxo2KzBWPvdIegqr5tI 1It1rLFmdwAHcd9wR4PxfsVy6ENxnWD+ZcRE/qlFzivzb+87DbNXDBWudLt7AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUrBr8ZE/95clA5YjH4dxB9mkFrSgwHwYDVR0j BBgwFoAUCo6OBjeFI4Rn1K0fUHzJezDbuVkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OWQ2YWNjNi0wYWYzLTRiOTctOTlhNC0wZjQ1ZThlY2Y1NzYvMC8wQThFOEUwNjM3 ODUyMzg0NjdENEFEMUY1MDdDQzk3QjMwREJCOTU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEE4RThFMDYzNzg1MjM4NDY3RDRBRDFGNTA3Q0M5N0IzMERC Qjk1OS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y5ZDZhY2M2LTBhZjMtNGI5Ny05 OWE0LTBmNDVlOGVjZjU3Ni8wLzMyMzQzMDM2M2EzNTYzMzQzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzMTM3MzAzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGXEAwDQYJKoZI hvcNAQELBQADggEBAKT7mtxddy4h+k6Oi0jtjZE26qXrPRtvJLz13vz5SoGj3zIA D7gkJGXAH/wYbCx8jQizOA8P1ConOvBvofGSqBNLE1SQpGBuL53B9K5aG4lfQ9l9 4RXfOJZ69rmOqcW1PM9eWDH+CjQ99AuEtjsIeRD+XS21ZkInhUs5xIyW0cLsy4ZJ DnqwnW1lZ3fYAil/Hjh8sx3rku80K8i1TgSMItmd+KCtCxro9LM0ElBJcKJ48qxQ UIy+b+UJ5rxqt3R8K6+wDf+N+fw84kYys1p8hm8iiFIvjdQ/ReNqXbUxEEXF1Vgy cSkXn+bR6oSpAdUHEwdTVKJuZcMCEXIMfX8peg4= -----END CERTIFICATE-----Generated at Thu Jun 5 18:41:20 2025 by rpki-client